<?php

/*
 * Copyright 2011 Johannes M. Schmitt <schmittjoh@gmail.com>
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

namespace JMS\SecurityExtraBundle\Security\Authorization\Expression;

use Symfony\Component\Security\Core\Role\RoleHierarchyInterface;
use Symfony\Component\Security\Core\Authentication\AuthenticationTrustResolverInterface;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;

class DefaultExpressionHandler implements ExpressionHandlerInterface
{
    private $trustResolver;
    private $roleHierarchy;

    public function __construct(AuthenticationTrustResolverInterface $trustResolver,
        RoleHierarchyInterface $roleHierarchy = null)
    {
        $this->trustResolver = $trustResolver;
        $this->roleHierarchy = $roleHierarchy;
    }

    public function createContext(TokenInterface $token, $object)
    {
        $context = array(
            'token' => $token,
            'object' => $object,
            'trust_resolver' => $this->trustResolver,
        );

        if (null !== $this->roleHierarchy) {
            $context['role_hierarchy'] = $this->roleHierarchy;
        }

        return $context;
    }
}
